Taeill Yoo scite author profile

Taeill Yoo

5Publications

7Citation Statements Received

15Citation Statements Given

How they've been cited

How they cite others

Affiliations

Kookmin University

Publications

Order By: Most citations

Recoverable Random Numbers in an Internet of Things Operating System

Yoo

Kang

Yeom

2017

Entropy

View full text Add to dashboard Cite

Over the past decade, several security issues with Linux Random Number Generator (LRNG) on PCs and Androids have emerged. The main problem involves the process of entropy harvesting, particularly at boot time. An entropy source in the input pool of LRNG is not transferred into the non-blocking output pool if the entropy counter of the input pool is less than 192 bits out of 4098 bits. Because the entropy estimation of LRNG is highly conservative, the process may require more than one minute for starting the transfer. Furthermore, the design principle of the estimation algorithm is not only heuristic but also unclear. Recently, Google released an Internet of Things (IoT) operating system called Brillo based on the Linux kernel. We analyze the behavior of the random number generator in Brillo, which inherits that of LRNG. In the results, we identify two features that enable recovery of random numbers. With these features, we demonstrate that random numbers of 700 bytes at boot time can be recovered with the success probability of 90% by using time complexity for 5.20 × 2 40 trials. Therefore, the entropy of random numbers of 700 bytes is merely about 43 bits. Since the initial random numbers are supposed to be used for sensitive security parameters, such as stack canary and key derivation, our observation can be applied to practical attacks against cryptosystem.

show abstract

A Study of the Parallelization of Hybrid SAT Solver using CUDA

Yoo

Kim

Yeom

et al. 2014

View full text Add to dashboard Cite

Analysis of the Random Number Generator Using MD5 PRNG in Linux Kernel

Yoo¹,

Yewon²,

Yoo³

et al. 2017

View full text Add to dashboard Cite

Abstract. When random numbers are needed, kernel level threads can use at least one of two random number generators (RNGs), called LRNG and MD5 PRNG. LRNG is a well-known cryptographic RNG accessed via /dev/(u)random and MD5 PRNG provides a function interface get_random_int(). While the /dev/(u)random has been investigated a lot, MD5 PRNG had been regarded as a less important one. In this paper, we demonstrate MD5 PRNG is vulnerable against a generic attack by searching entropy source in some embedded systems. In fact, once a random number is obtained, one can predict previous outputs of MD5 PRNG. Even though the RNG uses high resolution clock of microsecond unit as an entropy source, we can recover random number by reducing search space. We suggest a generic attack which the attacker just guesses entropy source at most 2 53 times. This attack can be done within 74 hours using parallel implementation with NVIDIA GeForce Titan X.

show abstract

A Design and Implementation of the Light-Weight Random Number Generator Using Sensors

Kang¹,

Yoo²,

Yeom³

et al. 2017

The Journal of Korean Institute of Communications and Informati

View full text Add to dashboard Cite

Key Words : random number generator(rng), sensor, entropy, cryptography ABSTRACT Random number generator(RNG) is essential in cryptographic applications. As recently a system using small devices such as IoT, Sensor Network, SmartHome appears, the lightweight cryptography suitable for this system is being developed. However due to resource limitations and difficulties in collecting the entropy, RNG designed for the desktop computer are hardly applicable to lightweight environment. In this paper, we propose a lightweight RNG to produce cryptographically strong random number using sensors. Our design uses a Hankel matrix, block cipher as the structure and sensors values as noise source. Futhermore, we implement the lightweight RNG in Arduino that is one of the most popular lightweight devices and estimate the entropy values of sensors and random number to demonstrate the effectiveness and the security of our design.

show abstract

Analysis of random noise generated by graphic processing units

Yeom

Yoo

2017

IJSTM

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Taeill Yoo

Recoverable Random Numbers in an Internet of Things Operating System

A Study of the Parallelization of Hybrid SAT Solver using CUDA

Analysis of the Random Number Generator Using MD5 PRNG in Linux Kernel

A Design and Implementation of the Light-Weight Random Number Generator Using Sensors

Analysis of random noise generated by graphic processing units

Contact Info

Product

Resources

About